CVE-2014-1545

Public PoC / Exploit (1)

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via vectors involving the sprintf and console functions.

Affected Products (45)

mozilla · netscape_portable_runtimevulnerable

mozilla · netscape_portable_runtime

References (20)

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761

http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00019.html

http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00023.html

http://lists.opensuse.org/opensuse-updates/2014-06/msg00040.html

http://lists.opensuse.org/opensuse-updates/2014-07/msg00001.html

http://lists.opensuse.org/opensuse-updates/2014-07/msg00004.html

http://secunia.com/advisories/58984

http://secunia.com/advisories/59229

http://secunia.com/advisories/59275

http://secunia.com/advisories/59318

http://secunia.com/advisories/59377

http://secunia.com/advisories/59387